From 805310be65ab937ac15bdccfded58e534c5a7969 Mon Sep 17 00:00:00 2001 From: Mohamadou Mbengue <mmbengue@gmail.com> Date: Tue, 22 Jun 2010 11:11:02 +0000 Subject: [PATCH] 2010-06-22 mohamadou *update ERP5Type_getSecurityCategoryFromAssignmentTree in erp5_egov to consider the user's role in security group generation git-svn-id: https://svn.erp5.org/repos/public/erp5/trunk@36504 20353a03-c40f-0410-a6d1-a30d3c3de9de --- ..._getSecurityCategoryFromAssignmentTree.xml | 237 ++++++++++++++++++ 1 file changed, 237 insertions(+) create mode 100644 bt5/erp5_egov/SkinTemplateItem/portal_skins/erp5_egov/ERP5Type_getSecurityCategoryFromAssignmentTree.xml diff --git a/bt5/erp5_egov/SkinTemplateItem/portal_skins/erp5_egov/ERP5Type_getSecurityCategoryFromAssignmentTree.xml b/bt5/erp5_egov/SkinTemplateItem/portal_skins/erp5_egov/ERP5Type_getSecurityCategoryFromAssignmentTree.xml new file mode 100644 index 0000000000..b948c949a3 --- /dev/null +++ b/bt5/erp5_egov/SkinTemplateItem/portal_skins/erp5_egov/ERP5Type_getSecurityCategoryFromAssignmentTree.xml @@ -0,0 +1,237 @@ +<?xml version="1.0"?> +<ZopeData> + <record id="1" aka="AAAAAAAAAAE="> + <pickle> + <tuple> + <global name="PythonScript" module="Products.PythonScripts.PythonScript"/> + <tuple/> + </tuple> + </pickle> + <pickle> + <dictionary> + <item> + <key> <string>Script_magic</string> </key> + <value> <int>3</int> </value> + </item> + <item> + <key> <string>_bind_names</string> </key> + <value> + <object> + <klass> + <global name="NameAssignments" module="Shared.DC.Scripts.Bindings"/> + </klass> + <tuple/> + <state> + <dictionary> + <item> + <key> <string>_asgns</string> </key> + <value> + <dictionary> + <item> + <key> <string>name_container</string> </key> + <value> <string>container</string> </value> + </item> + <item> + <key> <string>name_context</string> </key> + <value> <string>context</string> </value> + </item> + <item> + <key> <string>name_m_self</string> </key> + <value> <string>script</string> </value> + </item> + <item> + <key> <string>name_subpath</string> </key> + <value> <string>traverse_subpath</string> </value> + </item> + </dictionary> + </value> + </item> + </dictionary> + </state> + </object> + </value> + </item> + <item> + <key> <string>_body</string> </key> + <value> <string encoding="cdata"><![CDATA[ + +"""\n +A script returning security categories from a Person\'s assignments.\n +\n +Differences to the stock implementation:\n +\n +* if category is follow_up, we look for destination_project\n +\n +* if category not strict, we return not only the category, but also all its parents\n + (unless we say it is strict)\n +"""\n +\n +\n +# XXX For now, this script requires proxy manager to retrieve the Person object in all cases\n +from Products.ERP5Type.Log import log\n +\n +category_list = []\n +\n +person_module = context.portal_url.getPortalObject().getDefaultModule(\'Person\')\n +# It is better to keep getObject(), in this script this\n +# prevent a very strange bug, sometimes without getObject the\n +# assignment is not found\n +person_object_list = [x.getObject() for x in person_module.searchFolder(portal_type=\'Person\', reference=user_name)]\n +\n +if len(person_object_list) != 1:\n + if len(person_object_list) > 1:\n + raise ConsistencyError, "Error: There is more than one Person with reference \'%s\'" % user_name\n + else:\n + # if a person_object was not found in the module, we do nothing more\n + # this happens for example when a manager with no associated person object\n + # creates a person_object for a new user\n + return []\n +\n +person_object = person_object_list[0]\n +\n +# We look for valid assignments of this user\n +for assignment in person_object.contentValues(filter={\'portal_type\': \'Assignment\'}):\n + category_dict = {}\n + if assignment.getValidationState() == \'open\':\n + try:\n + for base_category in base_category_list:\n + if base_category == \'follow_up\':\n + category_value = assignment.getDestinationProject()\n + else:\n + category_value = assignment.getProperty(base_category)\n + #XXX the role is not aquire in the assignment get if from the user_object\n + if base_category==\'role\' and category_value in (None, \'\'):\n + category_value = person_object.getRole()\n +\n + if category_value not in (None, \'\'):\n + if root: category_value=category_value.split(\'/\')[0]\n + category_dict[base_category] = category_value\n + else:\n + raise RuntimeError, "Error: \'%s\' property is required in order to update person security group" % (base_category)\n + category_list.append(category_dict)\n + # if not strict, we go up the hierarchy (because if you work in group/a/b/c, chances are you \n + # are working in group/a/b, too :)\n + if not strict:\n + grouplist = category_value.split(\'/\')\n + for i in range(1,len(grouplist)):\n + cdict = category_dict.copy()\n + cdict[base_category] = \'/\'.join(grouplist[:-i])\n + category_list.append(cdict)\n + except RuntimeError,e:\n + log(str(e))\n +\n +return category_list\n + + +]]></string> </value> + </item> + <item> + <key> <string>_code</string> </key> + <value> + <none/> + </value> + </item> + <item> + <key> <string>_params</string> </key> + <value> <string>base_category_list=[], user_name=None, object=None, portal_type=None</string> </value> + </item> + <item> + <key> <string>_proxy_roles</string> </key> + <value> + <tuple> + <string>Assignor</string> + <string>Manager</string> + </tuple> + </value> + </item> + <item> + <key> <string>errors</string> </key> + <value> + <tuple/> + </value> + </item> + <item> + <key> <string>func_code</string> </key> + <value> + <object> + <klass> + <global name="FuncCode" module="Shared.DC.Scripts.Signature"/> + </klass> + <tuple/> + <state> + <dictionary> + <item> + <key> <string>co_argcount</string> </key> + <value> <int>4</int> </value> + </item> + <item> + <key> <string>co_varnames</string> </key> + <value> + <tuple> + <string>base_category_list</string> + <string>user_name</string> + <string>object</string> + <string>portal_type</string> + <string>Products.ERP5Type.Log</string> + <string>log</string> + <string>category_list</string> + <string>_getattr_</string> + <string>context</string> + <string>person_module</string> + <string>append</string> + <string>$append0</string> + <string>_getiter_</string> + <string>x</string> + <string>person_object_list</string> + <string>len</string> + <string>ConsistencyError</string> + <string>_getitem_</string> + <string>person_object</string> + <string>assignment</string> + <string>category_dict</string> + <string>base_category</string> + <string>category_value</string> + <string>None</string> + <string>root</string> + <string>_write_</string> + <string>RuntimeError</string> + <string>strict</string> + <string>grouplist</string> + <string>range</string> + <string>i</string> + <string>cdict</string> + <string>e</string> + <string>str</string> + </tuple> + </value> + </item> + </dictionary> + </state> + </object> + </value> + </item> + <item> + <key> <string>func_defaults</string> </key> + <value> + <tuple> + <list/> + <none/> + <none/> + <none/> + </tuple> + </value> + </item> + <item> + <key> <string>id</string> </key> + <value> <string>ERP5Type_getSecurityCategoryFromAssignmentTree</string> </value> + </item> + <item> + <key> <string>warnings</string> </key> + <value> + <tuple/> + </value> + </item> + </dictionary> + </pickle> + </record> +</ZopeData> -- 2.30.9